Password Generator
Generate random passwords or passphrases with estimated entropy in bits, using the browser cryptographic generator. Everything happens on your device: nothing is sent to any server.
How strength is estimated
1. Randomness comes from
crypto.getRandomValues (a CSPRNG). To pick each element without
bias, modulo rejection sampling is used: 32-bit values that fall into the
incomplete remainder are discarded.
2. Password: bits = length × log₂(pool size). Passphrase: bits = number of words × log₂(list size), plus the extras from the trailing number or symbol if added.
3. The estimate assumes the attacker knows the method (the pool or word list and the length). That is the correct way to measure entropy: security lies in the randomness, not in hiding how it was generated.
The word list and all character sets live in this page's code. Nothing is downloaded or queried online.
Runs locally in your browser · no sign-up · nothing leaves your browser